In response to the increasing threat of cyber attacks on critical infrastructure, also known as operational technology (OT), national cybersecurity agencies from nine countries have recently endorsed new guidelines to address these risks. The countries involved include Australia, the US, the UK, Canada, New Zealand, Germany, the Netherlands, Japan, and South Korea.
The urgency to address cybersecurity concerns surrounding OT has grown as attacks on essential systems such as power plants and water systems continue to rise. These crucial infrastructures are becoming increasingly vulnerable to cyber threats, making it essential for organizations managing OT networks to prioritize security measures.
One of the key factors contributing to the heightened focus on OT cybersecurity is the surge in hacktivist activities, with some originating from Russia. According to Netscout’s telemetry data, there has been a 43% increase in application layer attacks during the first six months of 2024 compared to the same period in 2023. These attacks aim to target application communication protocols, most commonly HTTP/S used in web applications.
In addition to application layer attacks, Netscout’s ASERT team has also recorded a 30% rise in volumetric attacks during the first half of 2024. These attacks are designed to saturate the victim’s network resources, with an average of around 41,000 DDoS attacks taking place every day. The attackers utilize amplification and reflection techniques, as well as direct-path traffic from large botnets to carry out these attacks.
Application layer attacks, such as HTTP floods, are particularly concerning as they overwhelm web servers with a high volume of GET or POST HTTP requests. By flooding the server with illegitimate requests, the attackers aim to disrupt the server’s ability to respond to legitimate traffic. These attacks are typically measured in requests per second (rpps) and can severely impact the availability and performance of web applications.
The endorsement of new guidelines by national cybersecurity agencies underscores the imperative need for organizations to proactively address cybersecurity threats targeting OT networks. With the rise in sophisticated attack techniques and the growing frequency of cyber attacks on critical infrastructure, it is crucial for organizations to implement robust security measures to safeguard their OT systems.
By prioritizing the security of OT networks and adhering to the guidelines set forth by cybersecurity agencies, organizations can enhance their resilience against cyber threats. As cyber attackers continue to evolve their tactics, it is essential for the security industry to collaborate on a global scale to protect critical infrastructure and secure essential systems from potential cyber attacks.